Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
File:                     e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft (raw, json)
Hash identifier:          pjGI1gGBkcJtw4EJZOBImzWsZTrbiRcKGOW1FKWCJlk=
Subject key identifier:   F4:41:2E:82:8E:16:CF:30:3C:0B:8A:5D:B8:A6:62:51:B9:50:A1:58
Authority key identifier: 7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C
Certificate issuer:       /CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
Certificate serial:       0197488C295D760D5B3F2564EAEDBA0FA9C0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
Manifest number:          0538
Signing time:             Sat 07 Jun 2025 04:00:34 +0000
Manifest this update:     Sat 07 Jun 2025 04:00:34 +0000
Manifest next update:     Sun 08 Jun 2025 04:00:34 +0000
Files and hashes:         1: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl (hash: RLwaxvuEpH/FhOl7iVVs06BKxaPdlKEgqBKqQ/+uxRs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:29:5d:76:0d:5b:3f:25:64:ea:ed:ba:0f:a9:c0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
        Validity
            Not Before: Jun  7 04:00:34 2025 GMT
            Not After : Jun  8 04:00:34 2025 GMT
        Subject: CN=f4412e828e16cf303c0b8a5db8a66251b950a158
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:e7:e5:46:6a:20:76:44:73:6f:13:d9:ad:36:
                    b0:de:34:79:2c:b3:21:a7:bd:99:58:4f:27:c7:fb:
                    4f:80:c0:f2:fa:b2:7b:57:1b:8a:67:62:1b:0e:a4:
                    50:7a:dd:5f:a2:6a:c1:62:fe:89:5f:4d:ca:67:41:
                    17:7e:90:30:2e:d7:8e:c9:a1:60:d2:3b:9c:46:28:
                    40:d7:91:a4:a6:9b:d3:8a:4c:45:f2:47:41:fd:43:
                    04:f8:ce:65:d5:5a:12:3b:1d:70:a0:9d:a6:28:ae:
                    dc:a2:11:4f:a3:bb:6f:eb:82:dd:f6:8e:f1:f0:93:
                    51:7d:6d:17:73:b4:73:62:ff:2b:89:2b:6a:ec:09:
                    82:25:3e:43:79:88:3e:39:37:28:1b:57:17:1e:b2:
                    6e:2f:95:2e:77:46:98:2f:a9:66:92:c8:44:3a:15:
                    0e:3a:41:0a:75:38:53:9a:bd:2e:0a:ed:3d:a3:4c:
                    e5:59:82:d8:a2:0b:79:58:ad:e5:de:de:14:e8:7d:
                    82:75:47:40:55:56:4c:9e:dc:fa:4e:01:4a:cd:85:
                    cb:6d:3b:6b:0a:fd:ae:7c:7d:46:0a:ce:08:e5:14:
                    eb:ab:56:71:b5:7f:98:07:96:7a:fb:84:0a:0b:31:
                    f6:be:64:7f:e2:9b:1d:a2:ab:6e:85:50:5d:4b:1d:
                    ac:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:41:2E:82:8E:16:CF:30:3C:0B:8A:5D:B8:A6:62:51:B9:50:A1:58
            X509v3 Authority Key Identifier:
                keyid:7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:55:92:f0:cb:3a:04:e5:a8:da:7f:25:0f:fd:94:df:12:47:
         5a:cc:3d:44:13:a5:95:55:c2:37:11:68:57:69:ea:fa:64:ce:
         75:60:d6:d3:dc:d4:46:a2:7d:74:13:d2:a9:24:9c:70:8c:3d:
         48:3f:73:a3:72:4a:cf:f5:6a:ca:b1:51:f7:e9:d2:38:d0:d1:
         d1:23:b6:84:fb:4d:0b:e5:f1:18:aa:ab:34:65:3d:1d:e5:fa:
         7c:6d:2d:bf:45:17:5e:49:50:09:0d:d3:3d:61:57:b3:f1:e2:
         b3:a5:80:a2:25:85:e2:28:99:23:29:80:1b:a9:12:4e:f5:06:
         1f:9a:c1:bf:ac:a7:22:8d:71:54:2e:18:fa:c9:be:26:9f:de:
         02:71:c7:bd:4c:08:51:d4:0a:4d:cc:a0:de:91:d4:f1:c6:6d:
         88:17:13:49:12:2f:69:95:56:35:04:2c:37:03:83:7d:61:07:
         ec:cb:de:c8:51:cc:a1:2d:1e:75:ce:a0:3e:3c:84:43:eb:91:
         98:9e:b9:11:2b:cc:81:a0:48:bd:eb:b0:9b:7b:13:8a:d4:c7:
         a8:68:38:04:96:fe:0c:d6:ef:93:9d:2f:2d:d1:78:84:48:2f:
         6e:df:4e:3a:b2:f0:43:44:28:b7:fe:41:da:60:8f:e3:a9:1c:
         61:0c:db:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----